Package org.springframework.security.web.server.header
package org.springframework.security.web.server.header
-
ClassDescriptionWrites cache control related headers.Writes the
Clear-Site-Data
response header when the request is secure.Represents the directive values expected by theClearSiteDataServerHttpHeadersWriter
Combines multipleServerHttpHeadersWriter
instances into a single instance.Writes theContent-Security-Policy
response header with configured policy directives.Adds X-Content-Type-Options: nosniffInserts Cross-Origin-Embedder-Policy headers.Inserts Cross-Origin-Opener-Policy header.Inserts Cross-Origin-Resource-Policy headers.Writes theFeature-Policy
response header with configured policy directives.Invokes aServerHttpHeadersWriter
onReactiveHttpOutputMessage.beforeCommit(java.util.function.Supplier)
.Writes thePermissions-Policy
response header with configured policy directives.Writes theReferrer-Policy
response header.Interface for writing headers just before the response is committed.Delegates to a providedServerHttpHeadersWriter
ifServerWebExchangeMatcher.matches(ServerWebExchange)
returns a match.Allows specifyingHttpHeaders
that should be written to the response.Writes the Strict-Transport-Security if the request is secure.Adds X-Content-Type-Options: nosniffServerHttpHeadersWriter
implementation for the X-Frame-Options headers.The X-Frame-Options values.Add the x-xss-protection header.The value of the x-xss-protection header.